I have a vpn between the company where I work and a government agency. Externally, some employees of the company access my environment via openvpn. I would like these employees to access this network of government. I have done various settings and could not. Follows the structure of the environment:

OpenVPN is one of the wide variety of SSL-based VPN implementations. OpenVPN differs from most of the other SSL-based VPNs in three key ways:

It is free and open source.

It is portable, and is available for many OSes.

It can be deployed through many different network configurations, as it tunnels within UDP or TCP.

OpenVPN is available on OpenBSD, as a third party port/package.

Unfortunately I have not used OpenVPN in about 20 years, so I am unable to assist with your implementation problem.

You're asking about isakmpd.conf(5). That is a configuration file for isakmpd(8), which is used with IPSec, an entirely different VPN technology than OpenVPN. IPSec has its own protocols, and an introduction can be found in ipsec(4).

Thank you. Unfortunately, with the information you have provided so far, all I can suggest is that you must establish SAs and flows between the virtual IP address pool used with OpenVPN and your government's network(s). I don't have enough information to tell you whether or not NAT should or should not be a component of the configuration.

I have not dealt with OpenVPN in decades, and I use ipsec.conf(5) to establish SAs and flows with isakmpd(8) rather than isakmpd.conf(5) and isakmpd.policy(5). Even if you decided to disclose more information, I might still not be able to help.

Last edited by jggimi; 28th November 2013 at 04:51 PM.
Reason: added sentence for NAT